Coverage for tests/test_security_http_basic_realm_description.py: 100%

Shortcuts on this page

r m x toggle line displays

j k next/prev highlighted chunk

0 (zero) top of page

1 (one) first highlighted chunk

[ ] prev/next file

u up to the index

? show/hide this help

35 statements

« prev ^ index » next coverage.py v7.6.1, created at 2025-05-05 00:03 +0000

1from base64 import b64encode 6 ctx1abcdef

3from fastapi import FastAPI, Security 6 ctx1abcdef

4from fastapi.security import HTTPBasic, HTTPBasicCredentials 6 ctx1abcdef

5from fastapi.testclient import TestClient 6 ctx1abcdef

7app = FastAPI() 6 ctx1abcdef

9security = HTTPBasic(realm="simple", description="HTTPBasic scheme") 6 ctx1abcdef

12@app.get("/users/me") 6 ctx1abcdef

13def read_current_user(credentials: HTTPBasicCredentials = Security(security)): 6 ctx1abcdef

14 return {"username": credentials.username, "password": credentials.password} 6 ctx1mnopqr

17client = TestClient(app) 6 ctx1abcdef

20def test_security_http_basic(): 6 ctx1abcdef

21 response = client.get("/users/me", auth=("john", "secret")) 6 ctx1mnopqr

22 assert response.status_code == 200, response.text 6 ctx1mnopqr

23 assert response.json() == {"username": "john", "password": "secret"} 6 ctx1mnopqr

26def test_security_http_basic_no_credentials(): 6 ctx1abcdef

27 response = client.get("/users/me") 6 ctx1stuvwx

28 assert response.json() == {"detail": "Not authenticated"} 6 ctx1stuvwx

29 assert response.status_code == 401, response.text 6 ctx1stuvwx

30 assert response.headers["WWW-Authenticate"] == 'Basic realm="simple"' 6 ctx1stuvwx

33def test_security_http_basic_invalid_credentials(): 6 ctx1abcdef

34 response = client.get( 6 ctx1yzABCD

35 "/users/me", headers={"Authorization": "Basic notabase64token"}

36 )

37 assert response.status_code == 401, response.text 6 ctx1yzABCD

38 assert response.headers["WWW-Authenticate"] == 'Basic realm="simple"' 6 ctx1yzABCD

39 assert response.json() == {"detail": "Invalid authentication credentials"} 6 ctx1yzABCD

42def test_security_http_basic_non_basic_credentials(): 6 ctx1abcdef

43 payload = b64encode(b"johnsecret").decode("ascii") 6 ctx1ghijkl

44 auth_header = f"Basic {payload}" 6 ctx1ghijkl

45 response = client.get("/users/me", headers={"Authorization": auth_header}) 6 ctx1ghijkl

46 assert response.status_code == 401, response.text 6 ctx1ghijkl

47 assert response.headers["WWW-Authenticate"] == 'Basic realm="simple"' 6 ctx1ghijkl

48 assert response.json() == {"detail": "Invalid authentication credentials"} 6 ctx1ghijkl

51def test_openapi_schema(): 6 ctx1abcdef

52 response = client.get("/openapi.json") 6 ctx1EFGHIJ

53 assert response.status_code == 200, response.text 6 ctx1EFGHIJ

54 assert response.json() == { 6 ctx1EFGHIJ

55 "openapi": "3.1.0",

56 "info": {"title": "FastAPI", "version": "0.1.0"},

57 "paths": {

58 "/users/me": {

59 "get": {

60 "responses": {

61 "200": {

62 "description": "Successful Response",

63 "content": {"application/json": {"schema": {}}},

64 }

65 },

66 "summary": "Read Current User",

67 "operationId": "read_current_user_users_me_get",

68 "security": [{"HTTPBasic": []}],

69 }

70 }

71 },

72 "components": {

73 "securitySchemes": {

74 "HTTPBasic": {

75 "type": "http",

76 "scheme": "basic",

77 "description": "HTTPBasic scheme",

78 }

79 }

80 },

81 }